My site is under attack
-
Today I’ve received 60+ emails notifying me of failed attempts to access my site.
I have something installed called “Limit Login Attempts Reloaded” which is supposed to limit attempts to 3 before a lockout. However, when I open the app it shows a graph suggesting there have been tens of thousands of attempted logins.
The site is hosted by Godaddy if that makes a difference.
I’m pretty clueless when it comes to this stuff, so I wanted to see if there are any best practices I should be following to protect the site.
I do have two factor authentication enabled. Although I’m wondering if I should switch from email to phone/text for that.
The blog I need help with is: (visible only to logged in users)
-
What is the URL of the site with the problem?
NOTE: We can only assist with websites hosted here at WordPress.com. If you’re using the WordPress software, but hosted elsewhere, you will need to reach out to your hosting provider or the WordPress.org community for guidance: https://wordpress.org/support/
-
It is hosted elsewhere, so I guess lll try my hosting company for help.
-
Correct, that is a self-hosted WordPress.org site, hosted with GoDaddy, which we can’t help with here.
To clear up any confusion, WordPress.com and WordPress.org are two different entities: https://wordpress.com/support/com-vs-org/
WordPress.org has complete documentation for self-hosted/installed versions of WordPress.org at https://wordpress.org/support/ and support at https://wordpress.org/support/forums/
And, you can find support for Limit Login Attempts Reloaded at https://wordpress.org/support/plugin/limit-login-attempts-reloaded/
-
- The topic ‘My site is under attack’ is closed to new replies.
WordPress.com Forums 